Mobile

Smashing Security #103: An Instagram nightmare, crazy iPhone deaths, and election hack claims

One travel blogger finds you don’t have to be Kylie Jenner to be targeted by an Instagram hacker. When 40 iPhones at a hospital mysteriously die, what could be the explanation? And, surprise surprise, political parties in the USA are throwing around hacking accusations.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Naked Security’s Mark Stockley.


2 min read

bitdefender.com

Police crack encrypted chat service IronChat and read 258,000 messages from suspected criminals

Dutch police have revealed that they were able to spy on the communications of more than 100 suspected criminals, watching live as over a quarter of a million chat messages were exchanged.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Yes, you should update your iPhone to iOS 12.1, but its lock screen is *still* unsafe

The latest iOS passcode bypass bug appears to have been introduced by Apple’s new Group Facetime feature.

Read more in my article on the Hot for Security blog.


0 sec read

000000 is Kanye West’s iPhone passcode

You can bet mischievous hackers are right now trying to crack into Kanye West’s online accounts with equally diabolical passwords.


1 min read

bitdefender.com

Even with the latest iOS 12 update, your iPhone’s lockscreen is unsafe

Once again, a way of bypassing the iPhone’s passcode lock to expose users’ photos and contacts has been discovered.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

How to crash and restart an iPhone with a CSS-based web attack

A security researcher has revealed a method of crashing and restarting iPhones and iPads, with just a few lines of code that could be added to any webpage.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Air Canada admits app data breach included customers’ passport details

All 1.7 million users of Air Canada’s mobile app have had their passwords reset by the company following a security breach which saw hackers compromise up to 20,000 accounts last week.

Read more in my article on the Hot for Security blog.


0 sec read

Fortnite fury over how Google handled its security hole

Epic Games isn’t happy about how Google handled the disclosure of the serious security vulnerability in Fortnite.


2 min read

bitdefender.com

Facebook pulls its VPN from the iOS App Store after data-harvesting accusations

Facebook has withdrawn its Onavo Protect VPN app from the iOS App Store after Apple determined that it was breaking data-collection policies.

Read more in my article on the Hot for Security blog.


0 sec read

Security breach in the White House’s Situation Room

A former reality TV star was able to sneak in her smartphone and record secret conversations in the Situation Room, supposedly the most secure place in the White House.


53 sec read

Smashing Security #090: Fortnite for Android, and the FCC’s DDoS BS

Fortnite players are told they’ll have to disable a security setting on Android, the FCC finally admits that it wasn’t hit by a DDoS attack, and Verizon’s VPN smallprint raises privacy concerns.

All this and much much more is discussed in the latest edition of the award-winning “Smashing Security” podcast hosted by computer security veterans Graham Cluley and Carole Theriault, joined this week by David Bisson.


1 min read

You’ll have to disable a recommended Android security setting to install Fortnite

Encouraging Android users to download apps from non-official sources is not a good idea from the security point of view, but Epic Games wants to maximise its profits.


2 min read

bitdefender.com

Reddit hacked – but don’t give up on 2FA just yet

Yes, SMS-based 2FA can be intercepted by someone determined to hack into your account.

But it’s also better than not having any multi-factor authentication in place at all.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security #089: Data breaches, ransomware, Bitcoin robberies, and typewriters

Ransomware rears its head again, Dixons Carphone reveals its data breach was almost 1000% worse than they previously thought, a man is accused of stealing five million dollars worth of cryptocurrency through hijacking mobile phones, and a Canadian guy called Norman is rushing to get the typewriters out of storage.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by journalist Geoff White.


1 min read

Android apps infected with umm… *Windows* malware

Security researchers at Palo Alto Networks recently discovered 145 apps in the official Google Play Android store that were “infected by malicious Microsoft Windows executable files.”

Yes, you read that correctly. Android apps carrying malicious Windows executables.


1 min read

tripwire.com

Hackers automate the laundering of money via Clash of Clans

Popular smartphone games such as “Clash of Clans” are being used to launder hundreds of thousands of dollars on behalf of credit card thieves.

Read more in my article on the Tripwire State of Security blog.


0 sec read